.1. 0 O 3; Jl iMla , O 3. .1. T a 2 

10/0312^6 

531 Raft FCT/Pr: 1? jam 2002 

T2146-907703 - US 3884/BC(PCT) 

IN THE UNITED STATES DESIGNATED/ELECTED OFFICE (D.O./E.O./US) 

Applicant: 



international 
Application No.: 

International 
Filing Date: 

U.S. Serial No.: 

U.S. Filing Date: 

For: 



Patrice HAMEAU et al. 

PCT/FR01/01506 

17 May 2001 
To be assigned 
January 17, 2002 

METHOD FOR MAKING SECURE A TYPED DATA 
LANGUAGE IN PARTICULAR IN AN INTEGRATED 
SYSTEM, AND INTEGRATED SYSTEM THEREFOR 



McLean, Virginia 



PRELIMINARY AMENDMENT 



Assistant Commissioner for Patents 
Washington, D.C. 20231 

Sir: 

The following amendments and remarks are submitted prior to examination of 
the above-identified application on the merits. 
IN THE TITLE: 

Please delete the title and substitute the following new title: 
-METHOD FOR SECURING A TYPED DATA LANGUAGE, PARTICULARLY IN AN 
EMBEDDED SYSTEM, AND EMBEDDED SYSTEM FOR IMPLEMENTING THE 
METHOD-; 
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IN THE SPECIFICATION: 

Before the paragraph numbered [0001], insert the following heading: 

-BACKGROUND OF THE INVENTION 
1 . Field of the Invention .-; 
Before the paragraph numbered [0007], insert the following heading: 

-2. Description of the Related Art .-; 
Before the paragraph numbered [0027], insert the following heading: 

-SUMMARY OF THE INVENTION-; 
Before the paragraph numbered [0038], insert the following heading: 

-BRIEF DESCRIPTION OF THE DRAWINGS-; 
Before the paragraph numbered [0039], insert the following heading: 
-DESCRIPTION OF THE PREFERRED EMBODIMENTS-; 

Page 18, after paragraph [0124), insert the following new paragraph: 
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-[0125] While this invention has been described in conjunction with specific 
embodiments thereof, it is evident that many alternatives, modifications and 
variations will be apparent to those skilled in the art. Accordingly, the preferred 
embodiments of the invention as set forth herein, are intended to be illustrative, not 
limiting. Various changes may be made without departing from the true spirit and full 
scope of the invention as set forth herein and defined in the claims. — 
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Page 19, after the heading "CLAIMS" and before the first claim, insert the 
following: 

-We claim:— 
IN THE CLAIMS 

Please substitute amended claims 1-10 as presented below for the same- 
numbered claims that were pending prior to the filing of this paper. A marked-up 
version of the amended claims is attached. 
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1 1 . (Amended) A method for secure execution of an instruction sequence 

2 of a computer application, said application being in the form of typed data stored in a 

3 first series of locations in a memory of a computer system, including a microchip, 

4 wherein type information elements are associated with each of said typed data in 

5 order to specify a specific type of said typed data, and wherein said type information 

6 elements are stored in a second series of storage locations in said memory, 
2? comprising: 

Hi before execution of instructions of said sequence, performing a 

k9 continuous verification operation to determine whether a match exists between one 

ru 

m of a type of instructions and an expected type indicated by said type information 

Ol elements stored in said second series of storage locations; and 

te authorizing execution of said instructions sequence only when there is 

si 

5b a match between said type of predetermined instructions and the expected type. 

1 2. (Amended) A method according to claim 1 , wherein each of said type 

2 information elements includes a string of bits stored in storage locations of said 

3 second series that correspond one-to-one with storage locations in said first series in 

4 which said associated typed data are stored, and wherein a configuration whereof 

5 represents on of said types of typed data. 
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1 3. (Amended) A method according to claim 1 , wherein said instructions 

2 are written in Java language and said typed data are constituted by typed objects, 

3 wherein said computer system includes a Java virtual machine in the 

4 form of software for manipulating said typed objects, 

5 wherein said storage locations in said memory of the computer system 
H are organized into stacks comprising a given maximum number of levels, each level 
R constituting one of said storage locations, 

5§ wherein said typed objects are stored in at least a first elementary 

~9 stack corresponding to a data area and a second elementary stack corresponding to 

O) a local variable area, and 

wherein said type information elements are distributed into two 

jfe additional elementary stacks that correspond one-to-one with said first and second 

13 elementary stacks, in order to specify the type of said associated objects stored in 

14 said data and local variable areas. 

1 4. (Amended) A method according to claim 1 , wherein, when there is no 

2 match in said performing step, execution of said instruction sequence is interrupted 

3 and replaced by execution of instructions corresponding pre-programmed security 

4 measures. 
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1 5. (Amended) A method according to claim 3, wherein said type 

2 information elements are associated with additional information elements that 

3 determine a size of said storage locations in said stacks storing said typed objects, 

4 in order to make a size of said stacks variable, based on said objects to be 

5 manipulated. 

[yL 6. (Amended) A method according to claim 3, further comprising: 

p2 marking objects associated with said type information elements flags to 

CJ3 indicate whether said objects should be saved in said stacks or can be erased. 

■=5 

1 7. (Amended) A system for secure execution of an instruction sequence 

2 of a computer application in the form of typed data stored in a first series of locations 

3 in a memory of a computer system, comprising: 

4 a computer data processor; and 

5 a memory for storing type information elements, said memory 

6 including: 

7 a second series of locations for storing said type information 

8 elements, associated with each of said typed data, in order to specify a type of said 
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9 typed data, and 
10 a program for continuously verifying, prior to execution of 

n predetermined instructions in said sequence, a match between a type indicated by 

12 said instructions and a type indicated by said type information elements, so as to 

13 authorize said execution only when there is a match between said types. 



H 8. (Amended) A system according to claim 7, wherein said first series of 

locations in said memory is organized into stacks comprising a given maximum 

m 

'0 number of levels, each of said levels constituting one of said storage locations, 
qi wherein said typed data are stored in at least a first elementary stack 

H5 called a data area and a second elementary stack called a local variable area, and 

\ i 

Gs wherein said second series of storage locations is organized into 

rU 

7 elementary stacks that correspond one-to-one with said first and second elementary 

8 stacks. 



1 9. (Amended) A system according to claim 8, wherein said type 

2 information elements stored in said second series of storage locations are 

3 associated with additional information elements that determine a size of said storage 

4 locations in said stacks storing said typed data. 
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1 10. (Amended) A system according to claim 7, further including an 

2 embedded smart card. 



H IN THE ABSTRACT 

Please replace the Abstract as originally filed with the following new abstract: 
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1 - ABSTRACT 

2 A method is provided for the secure execution of an instruction 

3 sequence of a computer application written in typed objects or data, such as 

4 those used in Java language. The method may be executed in association 

5 with a memory of a computer system including a microchip. The memory is 

6 organized into a first series of elementary stacks which store instructions. The 

7 typed objects or data are associated with one or more bits, each of which 

8 indicates the type of the object or data with which it is associated. The bits are 
£9 stored in a second series of elementary stacks that are in one-to-one 

pi correspondence with the stacks in the first series. Before executing 

ti predetermined types of instructions, a continuous verification is performed to 

jfej determine whether a match exists between the types of the predetermined 

T$ types of instructions and expected types indicated by the typing bits. If no 

©4 match exists, the execution is stopped.- 
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REMARKS 

Claims 1-10 are pending. These claims have been amended to place them in 
a form which comports with established U.S. claim practice. Also, the specification 
has been amended to include section headers, and a new abstract has been 
provided. 

It is respectfully submitted that the application is in condition for allowance. 
O Favorable consideration and prompt allowance of the application is respectfully 
requested. 

=55 

|{j Should the Examiner believe that further amendments are necessary to place 

rn 

: the application in condition for allowance, or if the Examiner believes that a personal 

O 

M, interview would be advantageous in order to more expeditiously resolve any 

s 

SJ remaining issues, the Examiner is invited to contact Applicants' undersigned attorney 

o 

ry at the telephone number listed below. 

To the extent necessary, Applicants petition for an extension of time under 37 
CFR § 1.136. Please charge any shortage in fees due in connection with this 
application, including extension of time fees, to Deposit Account No. 50-1165 
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(Attorney Docket No. T2146-907703) and credit any excess fees to the same 
Deposit Account. 

Respectfully submitted, 



Date: January 17, 2002 

By: 

Registration No. 20,604 

Miles & Stockbridge P.C. 
1751 Pinnacle Drive, Suite 500 
McLean, Virginia 22102-3833 
Telephone No: (703)610-8641 
Facsimile No: (703)610-8686 
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Marked-Up Version of the Amended Claims 

1 1 . (Amended) A method [Method] for [the] secure execution of an 

2 instruction sequence of a computer application , said application being in the form of 

3 typed data stored in a first series of [given] locations in a memory of a computer 

4 system including a microchip , [particularly an embedded microchip system, 

5 characterized in that additional data called] wherein type information elements are 

6 associated with each of said typed data[,] in order to specify a [the] specific type of 

7 [these] said typed data, [in that] and wherein said type information elements are 

jb stored in a second series of [given] storage locations [(4,5)] in said memory [(1) of a 

© computer system (8)], [and in that] comprising: 

jj) before [the] execution of instructions of said sequence [a 

fl predetermined type], performing a continuous verification operation [is performed, 

Wz prior to the execution of predetermined instructions, of the matching] to determine 

13 whether a match exists between one of a type of [indicated by these] instructions 

jgi and an expected type indicated by said type information elements stored in said 

Us second series of storage locations [(4,5), so that ]: and 

authorizing [said] execution of said instructions of said sequence [is 

&7 authorized] only when there is a match between said [types] type of predetermined 

18 instructions and the expected type . 



1 2. (Amended) A method [Method] according to claim 1, [characterized in 

2 that] wherein each of said type information elements includes [is constituted by] a 

3 string of bits stored in storage locations of said second series [(4,5)] that correspond 

4 one-to-one with storage locations in said first series [(2,3)] in which said associated 

5 typed data are stored, and wherein a [the] configuration whereof represents on of 

6 said types of typed data. 



9159978V02 [ 000001-#BRCH7 | 1/16/2002 



13 



;1 OO S ;1 Z?i?«n ,01170 



T2146-907703 - US 3884/BC(PCT) 



1 3. (Amended) A method [Method] according to claim 1 

2 [characterized in that] wherein said instructions are [being those of an application] 

3 written in ["] Java [" (registered trademark)] languagef,] and said typed data are 

4 constituted by typed objects, 

5 wherein [in that] said computer system [incorporates a piece] includes 

6 [of software called] a ["] Java ["] virtual machine [(5)] in the form of software 

7 [that manipulates] for manipulating said typed objects, 

8 wherein [in that] said storage locations [(2-5)] in said memory [(1)] of 
u9 the computer system [(8) being] are organized into stacks comprising a given 
to maximum number of levels, each level constituting one of said storage 

Wl locations, 

hj2 wherein said typed objects are stored in at least a first elementary 

fc stack corresponding to [called] a data area [(2)] and a second elementary stack 

KL4 [called] corresponding to a local variable area [(3)], and 

ITs wherein [in that] said type information elements are distributed into two 

bf6 additional elementary stacks [(4,5)] that correspond one-to-one with said first [(2)] 

M 

gj7 and second [(3)] elementary stacks, in order to specify the type of said associated 

T 8 objects stored in said data [(2)] and local variable [(3)] areas. 



1 4. (Amended) A method [Method] according to claim 1 , [characterized in 

2 that, when there is no match the] execution of said instruction sequence is 

3 interrupted and replaced by [the] execution of instructions corresponding pre- 

4 programmed security measures. 



1 5. (Amended) A method [Method] according to claim 3, [characterized in 

2 that] wherein said type information elements are associated with additional 
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3 information elements that determine a [the] size of said storage locations in said 

4 stacks [(2,3)] storing said typed objects, in order to make a [the] size of said stacks 

5 variable, based on said objects to be manipulated. 



1 6. (Amended) A method [Method] according to claim 3, [characterized in 

2 that] further comprising: 

3 marking objects associated with said type information elements [are 
^4 associated with additional information elements called] flags[, in order to mark said 
£"5 objects that are associated with them and] to indicate whether said objects [they] 
UJ6 should be saved in said stacks [(2,3)] or can be erased. 

2*1 7. (Amended) [Embedded smart card] A system [comprising computer 

y '■ 

= 2 data processing means and storage means] for [the] secure execution of an 

r: 3 instruction sequence of a computer application in the form of typed data stored in a 

H;4 first series of [given] locations in a memory of a computer system, [characterized in 

p 5 that] comprising: 

? ~ 6 a computer data processor: and 

7 a memory, said [storage means] [(1 ) comprise] memory for storing type 

8 information elements, said memory including: 

9 a second series of [given] locations [(4,5)] for storing [additional data 
io called] said type information elements, associated with each of said typed data, in 
n order to specify a [the] type of said typed [these] data, and 

12 [verification means (6)] A program for continuously verifying, prior to 

13 [the] execution of predetermined instructions in said seguence . [the matching] a 

14 match between a type indicated by said [these] instructions and a type indicated by 

15 said type information elements, so as to authorize said execution only when there is 

16 a match between said types. 
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1 8. (Amended) A system [System] according to claim 7, [characterized in 

2 that] wherein said first series of [given] locations in said memory [(1) of the 

3 embedded microchip system (8) being] ]s organized into stacks comprising a given 

4 maximum number of levels, each of said levels [level] constituting one of said 

5 storage locations, 

6 wherein said typed data are stored in at least a first elementary stack 
m7 called a data area [(2)] and a second elementary stack called a local variable area 
Q8 [(3)], and 

UJ9 wherein [in that] said second series of storage locations is [also] 

kfi organized into elementary stacks [(4,5)] that correspond one-to-one with said first 

ffil [(2)] and second [(3)] elementary stacks. 

a 

U=J 

; r 

s 

pi 9. (Amended) A system [System] according to claim 8, [characterized in 

' "2 that] wherein said type information elements stored in said second series of storage 

3 locations [(4,5)] are associated with additional information elements that determine a 

4 [the] size of said storage locations in said stacks [(2,3)] storing said typed data. 



1 10. (Amended) A system [System] according to claim 7, [characterized in 

2 that in said embedded system is a] further including an embedded smart card [(8)]. 
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